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IN THE CLAIMS 

^ 1. (Currently Amended) An information playback device 

for playing back information from a recording medium having 
encrypted content recorded thereon by a content recording 
entity, the information playback device comprising: 

a cryptosystem unit operable to determine the validity 
of a public key certificate of the content recording entity, to 
acquire a public key of the content recording entity from the 
public key certificate if the public key certificate is valid, 
and to decrypt the encrypted content if the validity of a 
digital signature of the content recording entity is verified 
based on the acquired public key^ 

whereby the device corresponds to a leaf of a key-tree 
structure, said key-tree structure including a plurality of 
nodes and a plurality of leaves, said plurality of nodes 
including a root node, and each of said nodes and each of said 
leaves corresponding to a respective encryption key; and 

whereby decryption by the device of said encrypted 
content is selectively inhibited by changing one or more keys 
corresponding to nodes included in a node path between said leaf 
corresponding to the device and said root node. 

2. (Original) An information playback device according 
to Claim 1, wherein the digital signature of the content 
recording entity is generated by digitally signing the encrypted 
content, and the cryptosystem unit decrypts the encrypted 
content if the validity of the generated digital signature is 
verified. 
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3. (Original) An information playback device according 
to Claim 1, wherein the digital signature of the content 
recording entity is generated by digitally signing a title key 
which corresponds to the encrypted content, and the cryptosystem 
unit decrypts the encrypted content if the validity of the 
generated digital signature is verified. 

4. (Currently Amended) An information playback device 
according to Claim 1, further comprising : 

a — plurality — ef — nodes — constituting — a — layered — key - 
tree structure having a plurality ef different information 

playback — devices — a-s — leaves , — fei*e — key - tree — structure — defining — a 
plurality — ef — node — paths — each — including — a — multiplicity — e-f — the 
nodes — arranged — serially — from — a — lowermost — node — fee — aft — uppermost 
node; — em-d 

a — plurality — e-f — stored — keys — including — node — keys 

unique — fee — the — plurality — — nodes — and — leaf — keys — unique — fee — the 
plurality of different — information playback devices; 

wherein the cryptosystem unit is operable to 
acquire decryption-key-generating data required for decrypting 
the encrypted content by decrypting-? — based — eft — fe^-e — stored — keys , 
an enabling key block composed of data generated by using each 
key on one the node path to encrypt a next adjacent upper key on 
the one node path. 

5. (Original) An information playback device according 
to Claim 4, wherein the decryption-key-generating data is a 
master key common to the plurality of different information 
playback devices or a media key unique to the recording medium. 
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6. (Currently Amended) An information recording device 
for recording information on a recording medium, the information 
recording device comprising: 

a cryptosystem unit operable to encrypt content 
recorded on the recording medium by a content recording entity, 
to generate a digital signature of the content recording entity, 
and to record the encrypted content, the digital signature, and 
a public key certificate of the content recording entity on the 
recording medium so as to correspond to one another^ 

whereby the recording medium is operable with a device 
that corresponds to a leaf of a key-tree structure, said key- 
tree structure including a plurality of nodes and a plurality of 
leaves, said plurality of nodes including a root node, and each 
of said nodes and each of said leaves corresponding to a 
respective encryption key; and 

whereby decryption by said device of said encrypted 
content is selectively inhibited by changing one or more keys 
corresponding to nodes included in a node path between said leaf 
corresponding to said device and said root node. 

7. (Original) An information recording device 
according to Claim 6, further comprising: 

a processing unit operable to generate a 
management table having correspondences among addresses of the 
encrypted content, the digital signature, and the public key 
certificate, and to record the management table on the recording 
medium. 

8. (Original) An information recording device 
according to Claim 6, wherein the cryptosystem unit is operable 
to generate the digital signature of the content recording 

4 



Application No.: 10/075,016 



Docket No.: SONYJP 3.0-239 



entity by digitally signing the encrypted content, and to record 
the generated digital signature in association with the 
encrypted content . 

9. (Original) An information recording device 
according to Claim 6, wherein the cryptosystem unit is operable 
to generate the digital signature of the content recording 
entity by digitally signing a title key which corresponds to the 
encrypted content, and to record the generated digital signature 
in association with the encrypted content. 

10. (Currently Amended) An information recording 
device according to Claim 6, further comprioing : 

—a — plurality — e-f — nodes — constituting — a — layered — key-tree 
structure — having — a — plurality — e-f — different — information — playback 
devices — as — leaves , — fe-he — key - tree — structure — defining — a — plurality 

€Ht node paths each including a multiplicity e-f the nodes 

arranged — serially — from — a — lowermost — node — t-e — a** — uppermost — node; 
and 

e — plurality — e£ — stored — keys — including — node — keys — unique 
to — fc-h-e — plurality — e£ — nodes — and — leaf — keys — unique — fee — the — plurality 
of different — information playback devices; 

wherein the cryptosystem unit is operable to acquire 
encryption-key-generating data required for encrypting the 
content recorded on the recording medium by decrypting 7 — based — &Ft 

feke stored keys , an enabling key block composed of data 

generated by using each key in the of*e — node path to encrypt a 
next adjacent upper key on the one node path. 



according 
data is 



11. (Original 
to Claim 10, 
a master key 



) An information recording device 
wherein the encryption- key-generating 
common to the plurality of different 
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information playback devices or a media key unique to the 
recording medium. 

12. (Currently Amended) A method for playing back 
information from a recording medium having encrypted content 
recorded thereon by a content recording entity, the method 
comprising : 

determining the validity of a public key certificate 
of the content recording entity; 

acquiring a public key of the content recording 
entity from the public key certificate if the public key 
certificate is valid; 

verifying the validity of a digital signature of the 
content recording entity based on the acquired public key; and 

decrypting the encrypted content if the validity of 
the digital signature is verified^ 

whereby the method is implemented on a device for , 
playing back information from the recording medium and the 
device corresponds to a leaf of a key-tree structure, said key- 
tree structure including a plurality of nodes and a plurality of 
leaves, said plurality of nodes including a root node, and each 
of said nodes and each of said leaves corresponding to a 
respective encryption key; and 

whereby decryption by said device of said encrypted 
content is selectively inhibited by changing one or more keys 
corresponding to nodes included in a node path between said leaf 
corresponding to said device and said root node. 
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13. (Original) An information playback method 
according to Claim 12, further comprising: 

generating the digital signature of the content 
recording entity by digitally signing the encrypted content, 
wherein the step of verifying the validity of the digital 
signature includes verifying the validity of the generated 
digital signature . 

14. (Original) An information playback method 
according to Claim 12, further comprising: 

generating the digital signature of the content 
recording entity by digitally signing a title key which 
corresponds to the encrypted content, wherein the step of 
verifying the validity of the digital signature includes 
verifying the validity of the generated digital signature. 

15. (Currently Amended) An information playback method 
according to Claim 12, further comprising: 

providing — a-R — information — playback — device — having — a 
plurality — e£ — nodes — constituting — a — layered key - tree — structure 
having — a — plurality — e£ — different — information playback — devices — a-s- 

lcavcs, fehe — key-tree — structure — defining — a — plurality — — node 

paths each including a multiplicity fe-ke nodes arranged 

serially — from — a — lowermost — node — fee — a-R — uppermost — node, a-nd — a 

plurality — — stored — keys — including — node — keys — unique — fee — fehe 
plurality — e-f — nodes — a**d — leaf — keys — unique — fee — fefee — plurality — e£ 
different — information playback devices; 

generating — key — data — by — using — each — key — eft — e-R-e — node 
path to — encrypt — a next — adj accnt — upper — key on — fehe — one node path; 
and 
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acquiring decryption-key-generating data required for 
decrypting the encrypted content by decryptingT — booed — ef* — t-he- 
Gtorcd keys, an enabling key block composed of the key data. 

16. (Currently Amended) A method for recording 
information on a recording medium, comprising: 

encrypting content recorded on the recording medium 
by a content recording entity; 

generating a digital signature of the content 
recording entity; and 

recording the encrypted content, the digital 
signature, and a public key certificate of the content recording 
entity on the recording medium so as to correspond to one 
another^ 

whereby the recording medium is operable with a device 
that corresponds to a leaf of a key-tree structure, said key- 
tree structure including a plurality of nodes and a plurality of 
leaves, said plurality of nodes including a root node, and each 
of said nodes and each of said leaves corresponding to a 
respective encryption key; and 

whereby decryption by said device of said encrypted 
content is selectively inhibited by changing one or more keys 
corresponding to nodes included in a node path between said leaf 
corresponding to said device and said root node. 

17. (Original) An information recording method 
according to Claim 16, further comprising: 
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generating a management table having correspondences 
among addresses of the encrypted content, the digital signature, 
and the public key certificate; and 

recording the management table on the recording 

medium. 

18. (Original) An information recording method 
according to Claim 16, further comprising 

generating the digital signature of the content 
recording entity by digitally signing the encrypted content; and 

recording the generated digital signature on the 
recording medium in association with the encrypted content. 

19. (Original) An information recording method 
according to Claim 16, further comprising: 

generating the digital signature of the content 
recording entity by digitally signing a title key which 
corresponds to the encrypted content; and 

recording the generated digital signature on the 
recording medium in association with the encrypted content. 

20. (Currently Amended) An information recording 
method according to Claim 16, further comprising: 

providing — arB — information — recording — device — having — a 
plurality — ef — nodes — constituting — a — layered — key tree — structure 
having — a — plurality — ef — different — information playback — devices — ae- 

IcavcG, t-he — key - tree — structure — defining — a — plurality — &§ — node 

paths each including a multiplicity &€ fehe nodes arranged 

serially — from — a — lowermost — node — fere — ena — uppermost — node , and — a 

plurality — e-£ — stored — keys — including — node — keys — unique — fee — fe-he 
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plurality — e£ — nodes — a^d — leaf — keys — unique — fee — fehe — plurality — e# 
different — information playback devices; 

genera t ing — key — data — by — using — each — key — eft — ene — node 
path — fee — encrypt — a — next — adjacent — upper — key — en — fehe — efte — adjacent 
node path; — and: 

acquiring encryption-key-generating data required for 
encrypting the content recorded on the recording medium by 
decryptingT — based — eft — fefee — stored — keys, an enabling key block 
composed of the key data. 

21. (Currently Amended) A computer-readable An 
information recording medium, comprising : 

encrypted content recorded thereon by a content 
recording entity; 

identification data for identifying the content 
recording entity; 

a public key certificate of the content recording 
entity; and 

a digital signature of the content recording entity^ 

whereby the medium is operable with a device that 
corresponds to a leaf of a key-tree structure, said key-tree 
structure including a plurality of nodes and a plurality of 
leaves, said plurality of nodes including a root node, and each 
of said nodes and each of said leaves corresponding to a 
respective encryption key; and 

whereby decryption by said device of said encrypted 
content is selectively inhibited by changing one or more keys 
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corresponding to nodes included in a node path between said leaf 
corresponding to said device and said root node. 

22. (Original) An information recording medium 
according to Claim 21, further comprising: 

a management table having correspondences among 
addresses of the encrypted content, the digital signature, and 
the public key certificate. 

23. (Currently Amended) A program storage medium 
storing a computer program for controlling a computer system to 
execute a process for playing back information from a recording 
medium having encrypted content recorded thereon by a content 
recording entity, the computer program comprising: 

determining the validity of a public key certificate 
of the content recording entity; 

acquiring a public key of the content recording 
entity from the public key certificate if the public key 
certificate is valid; 



verifying the validity of a digital signature of the 
content recording entity based on the acquired public key; and 



decrypting the encrypted content if the 
the digital signature is verified^ 


validity 


of 


whereby the computer . system corresponds to 


a leaf of 


a 


key-tree structure, said key-tree structure 


including 


a 


plurality of nodes and a plurality of leaves, said 


plurality 


of 


nodes including a root node, and each of said nodes 


and each 


of 


said leaves corresponding to a respective encryption 


key; and 
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whereby decryption by the computer system of said 
encrypted content is selectively inhibited by changing one or 
more keys corresponding to nodes included in a node path between 
said leaf corresponding to the computer system and said root 
node . 

24. (Currently Amended) A program storage medium 
storing a computer program for controlling a computer system to 
execute a process for recording information on a recording 
medium, the computer program comprising: 

encrypting content recorded on the recording 
medium by a content recording entity; 

generating a digital signature of the content 
recording entity; and 

recording the encrypted content, the digital 
signature, and a public key certificate of the content recording 
entity on the recording medium so as to correspond to one 
another^ 

whereby the recording medium is operable with a device 
that corresponds to a leaf of a key-tree structure, said key- 
tree structure including a plurality of nodes and a plurality of 
leaves, said plurality of nodes including a root node, and each 
of said nodes and each of said leaves corresponding to a 
respective encryption key; and 

whereby decryption by said device of said encrypted 
content is selectively inhibited by changing one or more keys 
corresponding to nodes included in a node path between said leaf 
corresponding to said device and said root node. 
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25. (Currently Amended) An information playback device 
for playing back information from a recording medium having 
encrypted content recorded thereon by a content recording 
entity, the information playback device comprising: 

a cryptosystem unit operable to acquire from the 
recording medium identification data representing the content 
recording entity, to determine a revocation state of the content 
recording entity based on the acquired identification data, and 
to decrypt the encrypted content if the content recording entity 
has not been revoked^ 

whereby the device corresponds to a leaf of a key-tree 



nodes and a plurality of leaves, 


said plurality of 


nodes 


including a root node, and each of 


said nodes and each of 


said 


leaves corresponding to a respective 


encryption key; and 




whereby decryption by the 


device of said encr 


ypted 


content is selectively inhibited by 


changing one or more 


keys 


corresponding to nodes included in a 


node path between said 


leaf 


corresponding to the device and said 


root node . 





26. (Original) An information playback device 
according to Claim 25, wherein the cryptosystem unit is operable 
to determine the validity of a public key certificate of the 
content recording entity, to acquire data identifying the 
content recording entity from the public key certificate if the 
public key certificate is valid, and to determine whether the 
content recording entity has been revoked based on the 
identifying data. 

27. (Original) An information playback device 
according to Claim 25, wherein the cryptosystem unit is operable 
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to decrypt the encrypted content if the validity of a digital 
signature of the content recording entity is verified. 

28. (Original) An information playback device 
according to Claim 25, wherein the cryptosystem unit is operable 
to determine the validity of a public key certificate of the 
content recording entity, to acquire a public key of the content 
recording entity from the public key certificate if the public 
key certificate is valid, and to decrypt the encrypted content 
if the validity of a digital signature of the content recording 
entity is verified based on the public key. 

29. (Original) An information playback device 
according to Claim 25, wherein the cryptosystem unit is operable 
to determine the validity of a digital signature of the content 
recording entity generated by digitally signing the encrypted 
content, and to decrypt the encrypted content if the digital 
signature is valid. 

30. (Original) An information playback device 
according to Claim 25, wherein the cryptosystem unit is operable 
to determine the validity of a digital signature of the content 
recording entity generated by digitally signing a title key 
corresponding to the encrypted content, and to decrypt the 
encrypted content if the digital signature is valid. 

31. (Original) An information playback device 
according to Claim 25, wherein the cryptosystem unit is operable 
to determine the validity of a public key certificate of the 
content recording entity, to acquire data identifying the 
content recording entity from the public key certificate if the 
public certificate is valid, and to determine whether the 
content recording entity has been revoked based on a comparison 
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between the identifying data and an identification stored in a 
revocation list. 

32. (Currently Amended) An information playback device 
according to Claim 25, further comprising: 

—a — layered — key - tree — structure — having — a — plurality — e# 
devices — a-s — leaves, — fefee — key - tree — structure — defining — a — plurality 
e£ — paths — each — including — a — root, — nodes — emd — the — leaves — arranged 
serially — from the — root — t-e — em — eftd — leaf, — each — e^f — t-he — root, — nodes 
and leaves — corresponding to a unique — key, 

wherein the cryptosystem unit is operable to 
determine the validity of a public key certificate of the 
content recording entity, to acquire data identifying the 
content recording entity from the public key certificate if the 
public key certificate is valid, and to determine whether the 
content recording entity has been revoked by executing a 
process, based on the identifying data, of following the indices 
of an enabling key block composed of data generated by using 
each of the keys on a selected path to encrypt a next adjacent 
upper key on the selected path. 

33. (Currently Amended) An information playback device 
according to Claim 25, further comprising: 



-a — plurality — enf — nodes — constituting — a — layered — key - tree 



structure 
devices — a 


having — a — plurality — of 


different — information — playback 


e-r — node — 


■s — leaves , — t-he — key-tree — 
paths each including — 


structure — defining — a — plurality 


arranged — 


serially — from — a — lowermo 


-a multiplicity e-f the nodes 

■s^c — node — t-e — a« — uppermost — node ; 



and 



a plurality of stored keys — including node — keys unique 
to the plurality of nodes; 
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wherein the cryptosystem unit is operable to acquire 
decryption-key-generating data required for decrypting the 
encrypted content by decryptingT — based — eft — e**e — ef — fc-h-e — stored 
key a, an enabling key block composed of data generated by using 
each of the keys on the one node path to encrypt a next adjacent 
upper key on the one node path. 

34. (Original) An information playback device 
according to Claim 33, wherein the decryption-key-generating 
data is a master key common to the plurality of different 
information playback devices or a media key unique to the 
recording medium. 

35. (Currently Amended) A method for playing back 
information from a recording medium having encrypted content 
recorded thereon by a content recording entity, the method 
comprising : 

acquiring from the recording medium 

identification data representing the content recording entity; 

determining a revocation state of the content 
recording entity based on the acquired identification data; and 

decrypting the encrypted content if the content 
recording entity has not been revoked^ 

whereby the method is implemented on a device for 
playing back information from the recording medium and said 
device corresponds to a leaf of a key-tree structure, said key- 
tree structure including a plurality of nodes and a plurality of 
leaves, said plurality of nodes including a root node, and each 
of said nodes and each of said leaves corresponding to a 
respective encryption key; and 
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whereby decryption by said device of said encrypted 
content is selectively inhibited by changing one or more keys 
corresponding to nodes included in a node path between said leaf 
corresponding to said device and said root node. 

36. (Original) An information playback method 
according to Claim 35, further comprising: 

determining the validity of a public key certificate 
of the content recording entity; 

acguiring data identifying the content recording 
entity from the public key certificate if the public key 
certificate is valid; and 

determining whether the content recording entity has 
been revoked based on the identifying data. 

37. (Original) An information playback method 
according to Claim 35, further comprising: 

verifying the validity of a digital signature of the 
content recording entity; and 

decrypting the encrypted content if the validity of 
the digital signature is verified. 

38. (Original) An information playback method 
according to Claim 35, further comprising: 

determining the validity of a public key certificate 
of the content recording entity; 

acquiring a public key of the content recording 
entity from the public key certificate if the public key 
certificate is valid; 
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verifying the validity of a digital signature of the 
content recording entity based on the public key; and 

decrypting the encrypted content if the validity of 
the digital signature is verified. 

39. (Original) An information playback method 
according to Claim 35, further comprising: 

verifying the validity of a digital signature of the 
content recording entity generated by digitally signing the 
encrypted content; and 

decrypting the encrypted content if the digital 
signature is valid. 

40. (Original) An information playback method 
according to Claim 35, further comprising: 

verifying the validity of a digital signature of the 
content recording entity generated by digitally signing a title 
key corresponding to the encrypted content; and 

decrypting the encrypted content if the digital 
signature is valid. 

41. (Original) An information playback method 
according to Claim 35, further comprising: 

determining the validity of a public key certificate 
of the content recording entity; 

acquiring data identifying the content recording 
entity from the public key certificate if the public key 
certificate is valid; and 
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determining whether the content recording entity has 
been revoked based on a comparison between the identifying data 
and an identification stored in a revocation list. 

42. (Currently Amended) An information playback method 
according to Claim 35, further comprising: 

providing — aft — information — playback — device — having — a 
layered — key tree — structure — having — a — plurality — e£ — devices — as 
leaves, — t-h-e — key- tree — structure — defining — a — plurality — eS — paths 
each — including — a — root , — nodes — em~d — fcke — leaves — arranged — serially 
from the — root — to — an end — leaf, — each — of — the — root , — nodes — and leaves 
corresponding to a unique — k e y; 

determining the validity of a public key certificate 
of the content recording entity; 

acquiring data identifying the content recording 
entity from the public key certificate if the public key 
certificate is valid; and 

determining whether the content recording device has 
been revoked by executing a process, based on the identifying 
data, of following the indices of an enabling key block composed 
of data generated by using each of the keys on a selected path 
to encrypt a next adjacent upper key on the selected path. 

43. (Currently Amended) An information playback method 
according to Claim 35, further comprising: 

providing — em — information — playback — device — having — a 
plurality — ef — nodes — constituting — a — layered — key - tree — structure 
having — a — plurality — e£ — different — information — playback devices — as- 
leaves , a**d — a — plurality — e-f — stored — keys — including — node — keys 
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unique — fee — feke — plurality — en£ — nodes — af*d — leaf — keys — unique — fee — fe^e 
plurality of nodes; — and 

acquiring decryption-key-generating data for 

decrypting the encrypted content by decrypting an enabling key 
block based on the stored keys . 

44. (Currently Amended) A computer-readable An 
information recording medium, comprising : 

encrypted content recorded thereon by a content 
recording entity; 

a public key certificate for the content recording 

entity; 

a digital signature of the content recording entity; 

and 

a revocation list^ 

whereby the medium is operable with a device that 
corresponds to a leaf of a key-tree structure, said key-tree 
structure including a plurality of nodes and a plurality of 
leaves, said plurality of nodes including a root node, and each 
of said nodes and each of said leaves corresponding to a 
respective encryption key; and 

whereby decryption by said device of said encrypted 
content is selectively inhibited by changing one or more keys 
corresponding to nodes included in a node path between said leaf 
corresponding to said device and said root node. 

45. (Original) An information recording medium 
according to Claim 44, further comprising: 
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a management table having correspondences among 
addresses of the encrypted content, the digital signature, and 
the public key certificate. 

46. (Currently Amended) A program storage medium 
storing a computer program for controlling a computer system to 
execute a process for playing back information from a recording 
medium having encrypted content recorded thereon by a content 
recording entity, the computer program comprising: 

acquiring from the recording medium identification 
data representing the content recording entity; 

determining a revocation state of the content 
recording entity based on the acquired identification data; and 

decrypting the encrypted content if the content 
recording entity has not been revoked^ 

whereby the computer system corresponds to a leaf of a 
key-tree structure, said key-tree structure including a 
plurality of nodes and a plurality of leaves, said plurality of 
nodes including a root node, and each of said nodes and each of 
said leaves corresponding to a respective encryption key; and 

whereby decryption by the computer system of said 
encrypted content is selectively inhibited by changing one or 
more keys corresponding- to nodes included in a node path between 
said leaf corresponding to the computer system and said root 
node . 
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